Re: [exim] Exim + SRS

Góra strony
Delete this message
Reply to this message
Autor: Beber
Data:  
Dla: Miles Wilton
CC: exim-users
Temat: Re: [exim] Exim + SRS
Le lundi 23 octobre à 10:14:18, Miles Wilton a écrit :

> Hi,
>
> It may be that you need to add an srs_condition line. If the email is
> being declined by the router after the SRS transform has taken place, it
> won't be undone.


Ok, but have you got an example ?

> As far as the log is concerned, the SRS=<a@???> tells you that an SRS
> transform has been performed and should only appear on forwarded email.
> Can you check that this appears on the bounced mail?


It appears too.

> Your SRS secret is yours and does not need to be registered. The only
> reason for it is so you can verify SRS addresses actually came from your
> server(s). If a hacker discovers it they could use your server to relay
> spam. Keep it secret!


Ok, thanks

>
> Hope that helps,
>
> Miles.
>
>
> Beber wrote:
> > Hi,
> >
> > I've some trouble using exim + SPF/SRS.
> >
> > SPF Check are ok with this config:
> >
> > acl_check_rcpt:
> >
> > ...
> >
> >   warn  message         = :after_received:$spf_received
> >         !hosts          = localhost : lechuck.meleeweb.net
> >         spf             = pass : softfail : none : neutral #: err_perm : err_temp : fail

> >
> >   deny  message         = SPF: $sender_host_address is not allowed to send mail from $sender_address_domain
> >         log_message     = SPF Check failed
> >         spf             = fail

> >
> > Appart that the Received-SPF is sometimes not set, and so I get a
> > Header named X-ACL-Warn which is empty.
> >
> > I getted some trouble while boucing a mail to a friends and so I get a
> > deny because SPF Check Failed.
> >
> > So I read about on google and install/configure SRS part in exim like :
> >
> > hide srs_config = *mysecret*:60:6
> >
> > ...
> >
> > begin routers
> >
> > ...
> >
> > userforward:
> > driver = redirect
> > srs = forward
> > check_local_user
> > local_part_suffix = +*
> > local_part_suffix_optional
> > file = $home/.forward
> > ## allow_filter
> > no_verify
> > no_expn
> > check_ancestor
> > file_transport = address_file
> > pipe_transport = address_pipe
> > reply_transport = address_reply
> >
> > srs_router:
> > driver = redirect
> > srs = reverseandforward
> > data = ${srs_recipient}
> >
> > And it still failed while bouncing the mail with still SPF Check failed.
> >
> > Did I miss something ?
> >
> > Also : All mailed received have now a modified Return-Path like :
> > Return-path: <SRS0=Z8E7Xu=EB=dotsrc.org=sylpheed-claws-users-return-2924-beber=meleeweb.net@???>
> >
> > And exim log look strange since :
> > 2006-10-20 19:01:00 1Gaxju-0004kN-16 <= enlightenment-devel-bounces@??? H=lists-outbound.sourceforge.net [66.35.250.225] P=esmtp S=4097 id=aa88ec7c0610200959s7831c4f0ia45b51d9683ed53e@???
> > 2006-10-20 19:01:00 1Gaxju-0004kN-16 => beber <beber@???> SRS=<SRS0=rnTqHc=EB=lists.sourceforge.net=enlightenment-devel-bounces@???> R=localuser T=ham_delivery
> >
> > Also, I there some requierement for the SRS Key ? Need to registrer it
> > somewhere ? in DNS ? anywhere ?
> >
> > Thanks
> >
>



--
Beber - E-Mail / Jabber (+GMail) : beber_AT_meleeweb.net
http://www.meleeweb.net